kindle
11 years ago
4 changed files with 0 additions and 106 deletions
@ -1,33 +0,0 @@
|
||||
injected_by_wvs |
||||
\.(bak|inc|old|mdb|sql|backup|java|class)$ |
||||
some-inexistent-website |
||||
boot\.ini |
||||
never_could_exist_file_nosec |
||||
SomeCustomInjectedHeader |
||||
((.*)/(attachments|js|upimg|images|css|uploadfiles|html|uploads|templets|static|template|data|inc|forumdata|upload|includes|cache|avatar)/(\\w+).(php|jsp)) |
||||
\/proc\/(\d+|self)\/environ |
||||
.htaccess |
||||
\<(iframe|script|body|img) |
||||
\/\!\* |
||||
\/\*.*?\*\/ |
||||
javascript\: |
||||
onmouseover\= |
||||
\.svn |
||||
ewebeditor |
||||
\.nsf |
||||
\.mdb |
||||
jmx-console |
||||
javascript\: |
||||
nosec\.txt |
||||
thisdoesnotexist |
||||
phpmyadmin |
||||
jsky_test\.txt |
||||
\$\{ |
||||
lang\.Runtime |
||||
getInputStream |
||||
getRuntime |
||||
\)\.exec\( |
||||
\(\' |
||||
\"\= |
||||
jmxinvokerservlet |
||||
(vhost|bbs|host|wwwroot|www|site|root|hytop|flashfxp).*.rar |
||||
@ -1,52 +0,0 @@
|
||||
order(.*)by(.*)\d |
||||
(?:alter\s*\w+.*character\s+set\s+\w+)|(";\s*waitfor\s+time\s+") |
||||
(?:%c0%ae\/) |
||||
\<\!ENTITY(.*)SYSTEM(.*)\> |
||||
(?:\Wselect.+\W*from)|((?:select|create|rename|truncate|alter|delete|update|insert|desc)\s*\(\s*space\s*\() |
||||
(?:(?:select|create|rename|truncate|alter|delete|update|insert|desc)\s+(?:(?:group_)concat|char|load_file)\s?\(?)|(?:end\s*\);)|("\s+regexp\W)|(?:[\s(]load_file\s*\() |
||||
(?i:(\%SYSTEMROOT\%)) |
||||
(?:merge.*using\s*\()|(execute\s*immediate\s*")|(?:\W+\d*\s*having\s*[^\s\-])|(?:match\s*[\w(),+-]+\s*against\s*\() |
||||
(?:\<!-|-->)|(?:<!\[\W)|(?:\]!>) |
||||
(?:procedure\s+analyse\s*\()|(?:create\s+(procedure|function)\s*\w+\s*\(\s*\)\s*-)|(?:declare[^\w]+[@#]\s*\w+)|(exec\s*\(\s*@) |
||||
(?:[\s()]case\s*\()|(?:\)\s*like\s*\()|(?:having\s*[^\s]+\s*[^\w\s])|(?:if\s?\([\d\w]\s*[=<>~]) |
||||
(?:(select|;)\s+(?:benchmark|if|sleep)\s*?\(\s*\(?\s*\w+) |
||||
(?:select\s*pg_sleep)|(?:waitfor\s*delay\s?"+\s?\d)|(?:;\s*shutdown\s*(?:;|--|#|\/\*|{)) |
||||
(?:\sexec\s+xp_cmdshell)|(?:from\W+information_schema\W)|(?:(?:(?:current_)?user|database|schema|connection_id)\s*\([^\)]*)|(?:exec\s+master\.)|(?:union select @)|(?:union[\w(\s]*select)|(?:select.*\w?user\()|(?:into[\s+]+(?:dump|out)file\s*) |
||||
(?:(sleep\((\s*)(\d*)(\s*)\)|benchmark\((.*)\,(.*)\))) |
||||
(?:@.+=\s*\(\s*select)|(?:\d\s+group\s+by.+\()|(?:(?:;|#|--)\s*(?:drop|alter))|(?:(?:;|#|--)\s*(?:update|insert)\s*\w{2,}) |
||||
(?:\\u00[a-f0-9]{2})|(?:\\x0*[a-f0-9]{2})|(?:\\\d{2,3}) |
||||
(?:\w\.exe\??\s)|(?:\d\.\dx\|)|(?:%(?:c0\.|af\.|5c\.))|(?:\/(?:%2e){2}) |
||||
(?:%u(?:ff|00|e\d)\w\w) |
||||
(?:(union(.*)select(.*))) |
||||
(?:\wscript:|@import[^\w]|;base64|base64,)|(?:\w\s*\([\w\s]+,[\w\s]+,[\w\s]+,[\w\s]+,[\w\s]+,[\w\s]+\)) |
||||
\.\.\/ |
||||
substr\( |
||||
[\s\"'`;\/0-9\=]+on\w+\s*= |
||||
background\b\W*?:\W*?url|background-image\b\W*?:|behavior\b\W*?:\W*?url|-moz-binding\b|@import\b|expression\b\W*?\( |
||||
(fromcharcode|alert|eval)\s*\( |
||||
((?:=|U\s*R\s*L\s*\()\s*[^>]*\s*S\s*C\s*R\s*I\s*P\s*T\s*:|:|[\s\S]allowscriptaccess[\s\S]|[\s\S]data:text\/html[\s\S]|[\s\S]xlink:href[\s\S]|<style[^>]*>[\s\S]*?|[\s\S]@import[\s\S]|<applet[^>]*>[\s\S]*?|<meta[^>]*>[\s\S]*?|<object[^>]*>[\s\S]*?) |
||||
\<(iframe|script|body|img|layer) |
||||
(?i:(?:\A|[^\d])0x[a-f\d]{3,}[a-f\d]*)+ |
||||
(?i:(\!\=|\&\&|\|\||>>|<<|>=|<=|<>|<=>|xor|rlike|regexp|isnull)|(?:not\s+between\s+0\s+and)|(?:is\s+null)|(like\s+null)|(?:(?:^|\W)in[+\s]*\([\s\d\"]+[^()]*\))|(?:xor|<>|rlike(?:\s+binary)?)|(?:regexp\s+binary)) |
||||
(?i:(?:m(?:s(?:ysaccessobjects|ysaces|ysobjects|ysqueries|ysrelationships|ysaccessstorage|ysaccessxml|ysmodules|ysmodules2|db)|aster\.\.sysdatabases|ysql\.db)|s(?:ys(?:\.database_name|aux)|chema(?:\W*\(|_name)|qlite(_temp)?_master)|d(?:atabas|b_nam)e\W*\(|information_schema|pg_(catalog|toast)|northwind|tempdb)) |
||||
(%0d|%0a) |
||||
phpinfo\( |
||||
(?:\((?:\W*?(?:objectc(?:ategory|lass)|homedirectory|[gu]idnumber|cn)\b\W*?=|[^\w\x80-\xFF]*?[\!\&\|][^\w\x80-\xFF]*?\()|\)[^\w\x80-\xFF]*?\([^\w\x80-\xFF]*?[\!\&\|]) |
||||
\<\!\-\-\W*?#\W*?(?:e(?:cho|xec)|printenv|include|cmd) |
||||
(?i:(\binclude\s*\([^)]*|mosConfig_absolute_path|_CONF\[path\]|_SERVER\[DOCUMENT_ROOT\]|GALLERY_BASEDIR|path\[docroot\]|appserv_root|config\[root_dir\])=(ht|f)tps?:\/\/) |
||||
(?:\b(?:\.(?:ht(?:access|passwd|group)|www_?acl)|global\.asa|httpd\.conf|boot\.ini)\b|\/etc\/) |
||||
(gopher|doc|php|glob|file|phar|zlib|ftp|ldap|dict|ogg|data|expect)\:\/ |
||||
\$_(GET|post|cookie|files|session|env|phplib|GLOBALS|SERVER)\[ |
||||
\/proc\/(\d+|self)\/environ |
||||
\<(iframe|script|body|img) |
||||
javascript\: |
||||
onmouseover\= |
||||
ewebe |
||||
jmx-console |
||||
javascript\: |
||||
phpmyadmin |
||||
\$\{ |
||||
java\.lang |
||||
\)\.exec\( |
||||
\(\' |
||||
\"\= |
||||
@ -1,20 +0,0 @@
|
||||
\.\./ |
||||
\:\$ |
||||
\$\{ |
||||
select.+(from|limit) |
||||
(?:(union(.*?)select)) |
||||
having|rongjitest |
||||
sleep\((\s*)(\d*)(\s*)\) |
||||
benchmark\((.*)\,(.*)\) |
||||
base64_decode\( |
||||
(?:from\W+information_schema\W) |
||||
(?:(?:current_)user|database|schema|connection_id)\s*\( |
||||
(?:etc\/\W*passwd) |
||||
into(\s+)+(?:dump|out)file\s* |
||||
group\s+by.+\( |
||||
xwork.MethodAccessor |
||||
(?:define|eval|file_get_contents|include|require|require_once|shell_exec|phpinfo|system|passthru|preg_\w+|execute|echo|print|print_r|var_dump|(fp)open|alert|showmodaldialog)\( |
||||
xwork\.MethodAccessor |
||||
(gopher|doc|php|glob|file|phar|zlib|ftp|ldap|dict|ogg|data)\:\/ |
||||
java\.lang |
||||
\$_(GET|post|cookie|files|session|env|phplib|GLOBALS|SERVER)\[ |
||||
Loading…
Reference in new issue